Description
AutoGPT is a workflow automation platform for creating, deploying, and managing continuous artificial intelligence agents. Prior to 0.6.63, `MediaDurationBlock` will download and store the video in a temporary directory without deleting before all noded are done. `StepThroughItemsBlock` can be used to iterate `MediaDurationBlock` multiple times. `StepThroughItemsBlock` does not limit the number of loops. In addition, `MediaDurationBlock ` does not limit the amount of disk space consumed in the current working directory and does not delete the video after outputing the result. When a malicious user chooses to screen shot many web pages, the disk space will eventually run out, causing a DoS. Version 0.6.63 patches the issue.
Published: 2026-06-18
Score: 8.7 High
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

A design flaw in AutoGPT’s MediaDurationBlock causes it to download and store video files without imposing any limits on disk space usage. When used in conjunction with StepThroughItemsBlock, which can loop unboundedly over MediaDurationBlock, an attacker can trigger an uncontrolled, rapid consumption of disk space. The resulting resource exhaustion disables further process execution, effectively denying service. This vulnerability is classified as a resource exhaustion flaw (CWE‑400).

Affected Systems

The affected product is Significant‑Gravitas AutoGPT, any version prior to 0.6.63. Version 0.6.63 contains a patch that removes the unlimited disk usage behavior. Users running earlier releases are vulnerable regardless of deployment environment, as the flaw is embedded in the core logic of the workflow blocks.

Risk and Exploitability

The CVSS score of 8.7 indicates high severity. EPSS data is unavailable, so the probability of exploitation cannot be quantified from the current dataset. The vulnerability is listed outside the CISA Known Exploited Vulnerabilities catalog, implying no publicly documented exploit code. However, the attack vector is straightforward: a malicious user can supply a large number of web page screenshots or media items, or create a long-running loop with StepThroughItemsBlock, forcing disk space to be filled. This makes the flaw relatively easy to trigger in environments where AutoGPT is exposed to untrusted input.

Generated by OpenCVE AI on June 18, 2026 at 17:35 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade AutoGPT to version 0.6.63 or later
  • Restrict or disable StepThroughItemsBlock usage, or enforce a maximum loop count on MediaDurationBlock iterations
  • Configure operating‑system disk quotas or monitor temporary file growth, and delete orphaned files if older versions must remain in use

Generated by OpenCVE AI on June 18, 2026 at 17:35 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Thu, 18 Jun 2026 18:30:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'yes', 'Exploitation': 'poc', 'Technical Impact': 'partial'}, 'version': '2.0.3'}


Thu, 18 Jun 2026 18:15:00 +0000

Type Values Removed Values Added
First Time appeared Significant-gravitas
Significant-gravitas autogpt
Vendors & Products Significant-gravitas
Significant-gravitas autogpt

Thu, 18 Jun 2026 16:45:00 +0000

Type Values Removed Values Added
Description AutoGPT is a workflow automation platform for creating, deploying, and managing continuous artificial intelligence agents. Prior to 0.6.63, `MediaDurationBlock` will download and store the video in a temporary directory without deleting before all noded are done. `StepThroughItemsBlock` can be used to iterate `MediaDurationBlock` multiple times. `StepThroughItemsBlock` does not limit the number of loops. In addition, `MediaDurationBlock ` does not limit the amount of disk space consumed in the current working directory and does not delete the video after outputing the result. When a malicious user chooses to screen shot many web pages, the disk space will eventually run out, causing a DoS. Version 0.6.63 patches the issue.
Title AutoGPT has a DoS vulnerability in MediaDurationBlock
Weaknesses CWE-400
References
Metrics cvssV4_0

{'score': 8.7, 'vector': 'CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N'}


Subscriptions

Significant-gravitas Autogpt
cve-icon MITRE

Status: PUBLISHED

Assigner: GitHub_M

Published:

Updated: 2026-06-18T17:32:15.190Z

Reserved: 2025-04-08T10:54:58.368Z

Link: CVE-2025-32437

cve-icon Vulnrichment

Updated: 2026-06-18T17:31:53.938Z

cve-icon NVD

No data.

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-06-18T18:00:11Z

Weaknesses
  • CWE-400

    Uncontrolled Resource Consumption